I feel that there is no need to know, how different browsers behave with respect to sessions. Anyways, as developers we need to write a generic code and container developers should also write a generic code.
Even the
servlet specification states that, NEVER assume 1 browser window = 1 session.
They say that Cookies and SSL certificates are all part of the browser process and NOT part of a SINGLE BROWSER.
Specification states that we(developers) should always assume that request from multiple windows can still be part of same session.